Last Updated : 23 Jul, 2025
The HTML <script> tag with the crossorigin attribute specifies how to handle fetching of external scripts. When set to "anonymous", it indicates that the script should be retrieved without sending user credentials.
Cross-Origin Resource Sharing(CORS) is a tool that allows web pages requesting for resources from another domain that is outside of their own domain. It is also used for managing cross-origin requests which is a request for a resource from an outside domain.
Syntax:
<script crossorigin="anonymous | use-credentials">
Attribute Values:
Attribute Description anonymous It has a default value. It defines a CORS request will be sent without passing the credentials information. use-credentials A cross-origin request will be sent with credentials, cookies, and certificatesNote: This attribute is only valid for use if we try to fetch the resources from the third party domain.
Example: In this example the HTML script tag with crossorigin attribute set to "anonymous" for loading my_script.js file. Button for submission included in the body.
HTML
<!DOCTYPE html>
<html>
<head>
<title>
HTML script crossorigin Attribute
</title>
</head>
<body>
<h2>HTML script crossorigin Attribute</h2>
<br />
<button>Submit</button>
<script
type="text/javascript"
src="my_script.js"
crossorigin="anonymous"
></script>
</body>
</html>
Output:
HTMLSupported Browsers:
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4